WEP vulnerabilities and SOHO WLAN products

STRACEY,James james.stracey at dewr.gov.au
Thu Nov 21 11:54:23 EST 2002 

 Dale, and others,

 There are some great papers out there detailing the best possible ways
to secure wireless lans including authenticating users via radius,
creating VPNs and the like.  The best I've read are available online
here:

 http://www.oreillynet.com/wireless/

 If you happen to live in the inner north, sure you don't want to share
some of that bandwidth?

  James.


-----Original Message-----
From: Dale Shaw [mailto:DShaw at exceed.com.au] 
Sent: Thursday, November 21, 2002 11:19 AM
To: wireless at lists.samba.org
Subject: WEP vulnerabilities and SOHO WLAN products


Hi,

I've just moved into an apartment block where access to walls and
ceiling for cabling is not a happening thing. Enter wireless networking.
Yay!

I'm gonna connect up to TransACT (http://www.transact.com.au/about/ for
those non-Canberrans on the list) so I'm looking at connecting some kind
of all-in-one wireless AP/router to the TransACT STB. I'll be looking
for something with a 4-port switch too.

Anyway, while I'm a pretty caring and sharing kinda guy, I'm not willing
to give free Internet access to passers-by armed with AirSnort or
whatever. Despite the freely-available exploit tools, I've noticed a
distinct lack of information about wireless security when browsing
around vendor web sites.

Is Cisco the only company that's come up with a (proprietary, for now)
solution for the known vulnerabilities? Since Cisco's pricing isn't
exactly aimed at hobbyists, I'll probably give them a miss, but what is
everyone else doing? You know, all the Netgear, D-Link, Linksys et al.
owners.

I want to keep it as simple as possible with as little 'infrastructure'
as possible. Do any of the consumer-level products do 802.1X? I'm mostly
concerned about authentication, but something that also covers
encryption would be nice. IPSec requires infrastructure, so unless I can
terminate a tunnel on the AP/router, I'd like to avoid going down that
path.

Maybe I'm being paranoid? Maybe I'm asking too much of this level of
device. Thoughts and opinions please :-)

Cheers,
Dale

Notice:
The information contained in this e-mail message and any attached files may
be confidential information, and may also be the subject of legal
professional privilege.  If you are not the intended recipient any use,
disclosure or copying of this e-mail is unauthorised.  If you have received
this e-mail in error, please notify the sender immediately by reply e-mail
and delete all copies of this transmission together with any attachments.

More information about the wireless mailing list